CN107392030A - A kind of method and device for detecting virtual machine and starting safety - Google Patents
A kind of method and device for detecting virtual machine and starting safety Download PDFInfo
- Publication number
- CN107392030A CN107392030A CN201710632814.0A CN201710632814A CN107392030A CN 107392030 A CN107392030 A CN 107392030A CN 201710632814 A CN201710632814 A CN 201710632814A CN 107392030 A CN107392030 A CN 107392030A
- Authority
- CN
- China
- Prior art keywords
- virtual
- module
- virtual machine
- tpm
- virtual tpm
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/575—Secure boot
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
- G06F2009/45587—Isolation or security of virtual machine instances
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a kind of method for detecting virtual machine and starting safety, the metric of virtual machine add-in is measured by virtual TPM module corresponding to virtual machine, and metric and benchmark metric value are contrasted by security centre, whether the add-in of final confirmation virtual machine is correct, if correct, virtual machine can be with clean boot.Each virtual machine has a corresponding virtual TPM module in the present invention, can be when several virtual machines need to start simultaneously, the add-in of each virtual machine is detected respectively, it is non-interference to the metrics process of each virtual machine, improve detection efficiency, after detection virtual machine add-in is correct, the security of virtual machine and whole system is ensure that, is advantageous to improve the performance of system operation.
Description
Technical field
The present invention relates to virtual machine field, more particularly to a kind of method and device for detecting virtual machine and starting safety.
Background technology
With the development of cloud computing technology, realize the unified representation and logical abstraction of IT resources, it possess distribution according to need,
The characteristics of extendable, reduce the cost of IT operations.
Virtual machine is the application one side of cloud computing technology, refers to a kind of special software, he can put down in computer
A kind of environment is created between platform and terminal user, and terminal user is then that the environment created based on this software is soft to operate
Part, operate, do not interfere with each other independently of each other.
But existing software virtual machine is in actual application, due to supporting the hardware resource of virtual machine operation at this
Ground is invisible, is subject to be tampered in data transfer or loading and attacks, causes virtual machine to be unable to clean boot.
The content of the invention
It is an object of the invention to provide a kind of method for detecting virtual machine and starting safety, solving virtual machine can not be safe
The problem of startup, security when virtual machine starts is ensured, it is a further object of the present invention to provide one kind detection virtual machine to open
Move the device of safety.
In order to solve the above technical problems, the present invention provides a kind of method for detecting virtual machine and starting safety, including:
When supplementary module monitors virtual machine start-up loading item, virtual TPM management module is searched and started described virtual
Virtual TPM module corresponding to machine, wherein, the virtual TPM module is the module that the virtual TPM management module is pre-created,
And each virtual machine has the TPM modules corresponding to one;The virtual TPM module measures the virtual machine add-in
Metric;When the add-in of the virtual machine starts and finished, the virtual TPM module sends the metric to safety
Center;The security centre judges whether the metric meets default benchmark metric value, if it is, generation is described virtual
The judged result of the startup safety of machine.
Wherein, also include before supplementary module monitors virtual machine start-up loading item:
When creating the virtual machine, the virtual TPM management module is using TPM analog modules as template establishment and the void
The virtual TPM module corresponding to plan machine, and the data of the virtual TPM module are preserved in a manner of encryption to local disk.
Wherein, before supplementary module monitors virtual machine start-up loading item, in addition to:
The virtual TPM module measures the add-in of the virtual machine, obtains and sends metric to the security centre,
As benchmark metric value.
Wherein, also include after virtual TPM module is started:
The virtual TPM manager presses predetermined period, and the data of the virtual TPM module are preserved in a manner of encryption to originally
Local disk.
Wherein, the virtual TPM management module is searched the virtual machine and included with the presence or absence of corresponding virtual TPM module:
Virtual TPM management module virtual TPM module according to corresponding to being searched the identification information of the virtual machine.
Wherein, the metric of the virtual TPM module measurement virtual machine add-in includes:
The virtual TPM module after hash algorithm computing, obtains the data of the virtual machine add-in described
Metric.
Present invention also offers a kind of system for detecting virtual machine and starting safety, including:
Virtual TPM management module, for when supplementary module monitors virtual machine start-up loading item, virtual TPM to manage mould
Block is searched and starts virtual TPM module corresponding to the virtual machine, wherein, the virtual TPM module is the virtual TPM management
The module that module is pre-created, and each virtual machine has the TPM modules corresponding to one;
Virtual TPM module, the metric of the virtual machine add-in is measured for the virtual TPM;In the virtual machine
Add-in start when finishing, the virtual TPM module sends the metric to security centre;
The security centre judges whether the metric meets default benchmark metric value, if it is, described in generation
The judged result of the startup safety of virtual machine.
Wherein, the virtual TPM management module is additionally operable to:
Before supplementary module monitors virtual machine start-up loading item, when creating the virtual machine, the virtual TPM pipe
Module is managed using TPM analog modules as the template establishment virtual TPM module corresponding with the virtual machine, and in a manner of encryption
The data of the virtual TPM module are preserved to local disk.
Wherein, the virtual TPM management module is additionally operable to:
After virtual TPM is started, the virtual TPM management module presses predetermined period, is preserved in a manner of encryption described
The data of virtual TPM module are to local disk.
Wherein, the virtual TPM module is used for:
The virtual TPM module after hash algorithm computing, obtains the data of the virtual machine add-in described
Metric.
A kind of method for detecting virtual machine and starting safety provided by the present invention, when virtual machine starts, passes through virtual TPM
Management module searches virtual TPM module corresponding to virtual machine, and the add-in of virtual machine is measured with virtual TPM module, will be obtained
Metric and benchmark metric value set in advance contrast, so as to realize whether the add-in of the virtual machine is attacked and distorted
Judgement, and each virtual machine has a corresponding virtual TPM module in the present invention, if multiple virtual machines are in the same time
When being inside required for starting, each virtual TPM module can measure within the same time to the add-in of each virtual machine,
So as to judge whether virtual machine can improve the efficiency that virtual machine is detected before virtual machine startup, and this hair with clean boot
Bright detection program is easy and effective, can relatively accurate security of the guarantee when virtual machine starts, improve virtual machine
Performance.
Brief description of the drawings
, below will be to embodiment or existing for the clearer explanation embodiment of the present invention or the technical scheme of prior art
The required accompanying drawing used is briefly described in technology description, it should be apparent that, drawings in the following description are only this hair
Some bright embodiments, for those of ordinary skill in the art, on the premise of not paying creative work, can be with root
Other accompanying drawings are obtained according to these accompanying drawings.
Fig. 1 is a kind of flow chart for embodiment that detection virtual machine provided by the invention starts safety;
Fig. 2 is a kind of embodiment flow chart that establishment virtual machine provided by the invention corresponds to virtual TPM module;
Fig. 3 is the structured flowchart for the system that detection virtual machine provided in an embodiment of the present invention starts safety.
Embodiment
In order that those skilled in the art more fully understand the present invention program, with reference to the accompanying drawings and detailed description
The present invention is described in further detail.Obviously, described embodiment is only part of the embodiment of the present invention, rather than
Whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art are not making creative work premise
Lower obtained every other embodiment, belongs to the scope of protection of the invention.
Detection virtual machine provided by the invention starts a kind of flow chart of embodiment of safety, as shown in figure 1, should
Method can include:
Step S101:When supplementary module monitors virtual machine start-up loading item, virtual TPM management module is searched and started
Virtual TPM module corresponding to the virtual machine.
A kind of phy chip of entity specifically, TPM is also known as trusted root platform, available for detect some equipment or
The security of program., can and virtual TPM module is the advance module that the virtual TPM management module creates according to the TPM of entity
To detect the security of some virtual units under virtual environment, and each virtual machine is corresponding with a virtual TPM module, uses
To measure the add-in metric of virtual machine, if multiple virtual machines are in certain time period, it is required for starting, can uses
Respective virtual TPM module, is independent of each other, and is advantageous to improve detection efficiency.
Can be an independent functional module it should be noted that for function possessed by virtual TPM management module
The function realized or in a function built in some functional module, but being had when virtual TPM management module
When some functions belong to a build-in function of some functional module, the functional module may also need to complete some other work(
It can operate, influence whether the operation of correlation function in the present invention, so as to influence the efficiency of the detection before virtual machine starts, so as to
Influence the starting efficiency of virtual machine in whole system.So it is virtual TPM management module as one than more preferably scheme
Associative operation in the independent Implement of Function Module present invention, but this is not the essential features of the present invention.
Step S102:The virtual TPM module measures the metric of the virtual machine add-in.
Step S103:When the add-in of the virtual machine starts and finished, the virtual TPM module sends out the metric
Deliver to security centre.
Specifically, the add-in related data of virtual machine, for example, file system, operating system and other similar numbers
According to be usually leave concentratedly in hardware resource, but hardware resource for local virtual machine when it is sightless, if directly
The data of correlation are read from hardware resource, and the data there is a situation where to be attacked or distorted, if virtual machine starts as usual
Will exist can not start or start after can not normal work in addition equipment belt is come poisoning intrusion etc. harm, so need open
, it is necessary to be measured item by item to the data in add-in during dynamic virtual machine, finally determine whether virtual machine can be safe according to metric
Start.
In addition, in a kind of specific embodiment in the present invention, virtual TPM module can specifically include three parts:Virtually
Feasible measurement root, virtual credible storage root and virtual credible report root.Because the add-in of virtual machine has more item datas, virtually
Credible measurement root is needed to measure more item datas of virtual machine add-in item by item, and the metric for often obtaining an item data is stored in
In virtual credible storage root, deposited until the data metric completion of all add-ins, then by virtual credible report root from virtual credible
The metric that Chu Genzhong extracts each item data is sent to security centre.But this is not the necessary technology scheme of the present invention, with this
Similar technical scheme is numerous to list herein.
Step S104:The security centre judges whether the metric meets default benchmark metric value, if it is,
Determine the virtual machine can clean boot, if it is not, then the virtual machine is unable to clean boot.
Specifically, if metric does not meet default benchmark metric value, illustrate the loading item data and original of virtual machine
It may be changed to compare, if starting virtual machine, it will the risk to break down be present, so it is virtual to be unable to clean boot
Machine, conversely, then can be with clean boot virtual machine.
Security centre can be disposed on that, with the same equipment of virtual machine, remote equipment can also be arranged at, usually several
The individual equipment for being provided with virtual machine is stored with benchmark degree jointly equipped with a security centre in the equipment where the security centre
Value, and virtual machine can also be installed in the equipment.
Based on above-described embodiment, in another specific embodiment of the invention, before virtual machine startup, for each void
The establishment process of virtual TPM module corresponding to plan machine, refers to Fig. 2, and Fig. 2 corresponds to virtual for establishment virtual machine provided by the invention
A kind of embodiment flow chart of TPM modules, this method can include:
Step S201:Supplementary module monitors to create the operation of virtual machine.
It should be noted that supplementary module can specifically include monitoring module and data path module, monitoring module is main
It is the action for monitoring virtual machine, for example, the establishment of virtual machine, startup, closing, hang-up and migration, in the action of virtual machine
When new change occurs, relevant device can be notified to take the reply operation of correlation in time, and data path module is then in void
When plan machine needs to start, by under corresponding virtual TPM module carry to virtual environment, so that virtual machine uses.
Step S202:Supplementary module sends the message that the operation for creating virtual machine be present to virtual TPM management module.
Step S203:Virtual TPM management module creates corresponding with newly-built virtual machine empty using TPM simulators as template
Intend TPM modules.
It should be noted that it is some in particular cases, when supplementary module detects that virtual machine needs to start, to virtual
TPM management modules send message, and for some reason, such as corresponding virtual TPM module is deleted or altered, and cause void
Intend TPM modules can not find corresponding to virtual TPM module, or the virtual TPM module found is unavailable, and this is that system can also write from memory
Thinking that the virtual machine belongs to newly-built virtual machine, virtual TPM management module can also re-create corresponding virtual management module, but
It is that the probability that this special circumstances occur is very small.
Step S204:Virtual TPM management module is by the data storage of the virtual TPM module newly created to local disk.
Measured in view of virtual TPM modularity after the metric of virtual machine, it is necessary to have security centre by metric and benchmark
Metric is contrasted, and the setting for benchmark metric value can be before virtual machine is created, and create as needed
What virtual machine precalculated out, and another fairly simple mode is to create completion virtual machine and corresponding virtual TPM
Afterwards, it is considered that the security of the virtual machine newly created is good, it is possible to sent with virtual TPM module into safety
The heart is as benchmark metric value, so the above embodiment of the present invention can be improved further, can specifically include:
Step S205:The virtual TPM module measures the add-in of the virtual machine, obtains the metric of virtual machine.
Step S206:The virtual TPM module sends the metric of virtual machine to security centre, as benchmark metric
Value.
It should be noted that not necessarily virtual TPM module measures the metric work of newly-built virtual machine in the present invention
On the basis of metric or otherwise obtain benchmark metric value, so such scheme be not the present invention necessary skill
Art feature.
Based on above-described embodiment, it is contemplated that virtual TPM module data safety issue, a kind of specific embodiment of the invention
In can include:
After virtual TPM module is started, the virtual TPM manager presses predetermined period, and institute is preserved in a manner of encryption
The data of virtual TPM module are stated to local disk.
Generally, before virtual machine starts, virtual TPM module just needs to start, corresponding until virtual machine closing
Virtual TPM module can just close, to be measured at any time to virtual machine.The virtual TPM module data of consideration there may be by
Situation about distorting, so, can be by the data in periodic refresh local disk, to ensure the accuracy of data.During as the cycle
Between setting, can according to practical application need and set.
Based on above-described embodiment, in another specific embodiment of the invention, can include:
It is described virtual when the virtual TPM management module searches the virtual machine with the presence or absence of corresponding virtual TPM module
TPM management modules virtual TPM module according to corresponding to being searched the identification information of the virtual machine.
Specifically, each virtual machine carries itself distinctive numbering, it is possible thereby to good to each virtual TPM according to changing
Numbered corresponding to module facility, or the storage location of each virtual TPM module is set according to numbering.
Based on above-mentioned any embodiment, in a kind of specific embodiment in the present invention, can include:
During the metric of virtual TPM module measurement virtual machine add-in, the virtual TPM module is by the virtual machine
The data of add-in obtain described metric after hash algorithm computing.
Because hash algorithm computing has uniqueness to different data operations, hash algorithm pair is used in the present invention
The data of virtual machine add-in carry out computing, can obtain an accurate data, but this be not yet the present invention only
One embodiment, the present invention can be also realized using other algorithms, as long as operation result reaches the requirement of the degree of accuracy.
The system for starting safety to detection virtual machine provided in an embodiment of the present invention below is introduced, inspection described below
The method for surveying system and above-described detection virtual machine startup safety that virtual machine starts safety can be mutually to should refer to.
Fig. 3 is the structured flowchart for the system that detection virtual machine provided in an embodiment of the present invention starts safety, and reference picture 3 detects
The system that virtual machine starts safety can include:
Virtual TPM management module 100, virtual TPM module 200 and security centre 300;
Virtual TPM management module 100, for when supplementary module monitors virtual machine start-up loading item, virtual TPM management
Module is searched and starts virtual TPM module corresponding to the virtual machine, wherein the virtual TPM module is the virtual TPM pipe
The module that reason module is pre-created;
Virtual TPM module 200, the metric of the virtual machine add-in is measured for the virtual TPM;Described virtual
When the add-in startup of machine finishes, the virtual TPM module sends the metric to security centre;
Security centre 300, for judging whether the metric meets default benchmark metric value, if it is, to institute
State virtual machine and send and start order.
As a kind of embodiment, the system that detection virtual machine provided by the present invention starts safety can also enter one
Step includes:
The virtual TPM management module 100 is additionally operable to before supplementary module monitors virtual machine start-up loading item, is being created
When building the virtual machine, the virtual TPM management module is using TPM analog modules as template establishment institute corresponding with the virtual machine
Virtual TPM module is stated, and preserves in a manner of encryption the data of the virtual TPM module to local disk.
As a kind of embodiment, the system that detection virtual machine provided by the present invention starts safety can also enter one
Step includes:
The virtual TPM management module 100 is additionally operable to after virtual TPM is started, and the virtual TPM management module is by pre-
If the cycle, the data of the virtual TPM module are preserved in a manner of encryption to local disk.
Alternatively, the virtual TPM module 200 is used for:
The virtual TPM module after hash algorithm computing, obtains the data of the virtual machine add-in described
Metric.
The system that the detection virtual machine of the present embodiment starts safety is used to realize that foregoing detection virtual machine starts safety
Method, therefore detect the visible detection virtual machine hereinbefore of embodiment that virtual machine starts in the system of safety and start peace
The embodiment part of full method, for example, virtual TPM management module 100, for realizing that above-mentioned detection virtual machine starts safety
Step S101 in method, virtual TPM module 200, for realizing above-mentioned steps S102 and S103, virtual TPM module 300, it is used for
Above-mentioned steps S104 is realized, so, its embodiment is referred to the description of corresponding various pieces embodiment, herein not
Repeat again.
Each embodiment is described by the way of progressive in this specification, what each embodiment stressed be with it is other
The difference of embodiment, between each embodiment same or similar part mutually referring to.For dress disclosed in embodiment
For putting, because it is corresponded to the method disclosed in Example, so description is fairly simple, related part is referring to method part
Explanation.
Professional further appreciates that, with reference to the unit of each example of the embodiments described herein description
And algorithm steps, can be realized with electronic hardware, computer software or the combination of the two, in order to clearly demonstrate hardware and
The interchangeability of software, the composition and step of each example are generally described according to function in the above description.These
Function is performed with hardware or software mode actually, application-specific and design constraint depending on technical scheme.Specialty
Technical staff can realize described function using distinct methods to each specific application, but this realization should not
Think beyond the scope of this invention.
Directly it can be held with reference to the step of method or algorithm that the embodiments described herein describes with hardware, processor
Capable software module, or the two combination are implemented.Software module can be placed in random access memory (RAM), internal memory, read-only deposit
Reservoir (ROM), electrically programmable ROM, electrically erasable ROM, register, hard disk, moveable magnetic disc, CD-ROM or technology
In any other form of storage medium well known in field.
The method of safety is started to detection virtual machine provided by the present invention above and device is described in detail.This
Apply specific case in text to be set forth the principle and embodiment of the present invention, the explanation of above example is only intended to
Help to understand method and its core concept of the invention.It should be pointed out that for those skilled in the art,
Without departing from the principles of the invention, some improvement and modification can also be carried out to the present invention, these are improved and modification also falls
Enter in the protection domain of the claims in the present invention.
Claims (10)
- A kind of 1. method for detecting virtual machine and starting safety, it is characterised in that including:When supplementary module monitors virtual machine start-up loading item, virtual TPM management module is searched and starts the virtual machine pair The virtual TPM module answered, wherein, the virtual TPM module is the module that the virtual TPM management module is pre-created, and often The individual virtual machine corresponds to a virtual TPM module;The virtual TPM module measures the metric of the virtual machine add-in;When the add-in of the virtual machine starts and finished, the virtual TPM module sends the metric to security centre;The security centre judges whether the metric meets default benchmark metric value, if it is, generation is described virtual Machine starts the judged result of safety.
- 2. according to the method for claim 1, it is characterised in that before supplementary module monitors virtual machine start-up loading item Also include:When creating the virtual machine, the virtual TPM management module is using TPM analog modules as template establishment and the virtual machine The corresponding virtual TPM module, and the data of the virtual TPM module are preserved in a manner of encryption to local disk.
- 3. according to the method for claim 2, it is characterised in that before supplementary module monitors virtual machine start-up loading item Also include:The virtual TPM module measures the add-in of the virtual machine, obtains and sends metric to the security centre, as The benchmark metric value.
- 4. according to the method for claim 1, it is characterised in that also include after virtual TPM module is started:The virtual TPM manager is preserved the data of the virtual TPM module by predetermined period to this earth magnetism in a manner of encrypting Disk.
- 5. according to the method for claim 1, it is characterised in that the virtual TPM management module is searched and starts the void Virtual TPM module includes corresponding to plan machine:Virtual TPM management module virtual TPM module according to corresponding to being searched the identification information of the virtual machine.
- 6. according to the method described in any one of claim 1 to 5, it is characterised in that the virtual TPM module measurement virtual machine adds Carrying the metric of item includes:The data of the virtual machine add-in after hash algorithm computing, are obtained described measurement by the virtual TPM module Value.
- A kind of 7. system for detecting virtual machine and starting safety, it is characterised in that including:Virtual TPM management module, virtual TPM mould Block and security centre;Wherein, the virtual TPM management module, for when supplementary module monitors virtual machine start-up loading item, virtual TPM pipe Reason module is searched and starts virtual TPM module corresponding to the virtual machine, wherein the virtual TPM module is the virtual TPM The module that management module is pre-created, and each virtual machine corresponds to a virtual TPM module;The virtual TPM module, the metric of the virtual machine add-in is measured for the virtual TPM;In the virtual machine Add-in start when finishing, the virtual TPM module sends the metric to security centre;The security centre, for judging whether the metric meets default benchmark metric value, if it is, described in generation Virtual machine starts the judged result of safety.
- 8. system according to claim 7, it is characterised in that the virtual TPM management module is additionally operable to:Before supplementary module monitors virtual machine start-up loading item, when creating the virtual machine, using TPM analog modules as mould Plate creates the virtual TPM module corresponding with the virtual machine, and the number of the virtual TPM module is preserved in a manner of encryption According to local disk.
- 9. system according to claim 7, it is characterised in that the virtual TPM management module is additionally operable to:After virtual TPM is started, the data of the virtual TPM module are preserved in a manner of encrypting by predetermined period to this earth magnetism Disk.
- 10. according to the system described in any one of claim 7 to 9, it is characterised in that the virtual TPM module is specifically used for:The data of the virtual machine add-in after hash algorithm computing, are obtained described measurement by the virtual TPM module Value.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710632814.0A CN107392030A (en) | 2017-07-28 | 2017-07-28 | A kind of method and device for detecting virtual machine and starting safety |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710632814.0A CN107392030A (en) | 2017-07-28 | 2017-07-28 | A kind of method and device for detecting virtual machine and starting safety |
Publications (1)
Publication Number | Publication Date |
---|---|
CN107392030A true CN107392030A (en) | 2017-11-24 |
Family
ID=60341835
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710632814.0A Pending CN107392030A (en) | 2017-07-28 | 2017-07-28 | A kind of method and device for detecting virtual machine and starting safety |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107392030A (en) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108132828A (en) * | 2017-12-25 | 2018-06-08 | 浪潮(北京)电子信息产业有限公司 | Imaginary Mechanism construction method, device and the equipment realized based on libvirt |
CN108255579A (en) * | 2018-01-11 | 2018-07-06 | 浪潮(北京)电子信息产业有限公司 | A kind of virtual machine management method and device based on KVM platforms |
CN109101319A (en) * | 2018-08-09 | 2018-12-28 | 郑州云海信息技术有限公司 | It is a kind of to realize TPCM fully virtualized platform and its working method on QEMU |
CN111831609A (en) * | 2020-06-18 | 2020-10-27 | 中国科学院数据与通信保护研究教育中心 | Method and system for unified management and distribution of binary file metric values in virtualization environment |
Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH11212807A (en) * | 1998-01-30 | 1999-08-06 | Hitachi Ltd | Program execution method |
CN1997955A (en) * | 2004-06-24 | 2007-07-11 | 英特尔公司 | Method and apparatus for providing secure virtualization of a trusted platform module |
CN101405694A (en) * | 2006-03-21 | 2009-04-08 | 国际商业机器公司 | Method and apparatus for migrating a virtual TPM instance and preserving uniqueness and completeness of the instance |
CN101488173A (en) * | 2009-01-15 | 2009-07-22 | 北京交通大学 | Method for measuring completeness of credible virtual field start-up files supporting non-delaying machine |
CN101599025A (en) * | 2009-07-07 | 2009-12-09 | 武汉大学 | Safety virtualization method of trusted crypto module |
CN103501303A (en) * | 2013-10-12 | 2014-01-08 | 武汉大学 | Active remote attestation method for measurement of cloud platform virtual machine |
CN103888251A (en) * | 2014-04-11 | 2014-06-25 | 北京工业大学 | Virtual machine credibility guaranteeing method in cloud environment |
CN105830082A (en) * | 2013-12-24 | 2016-08-03 | 微软技术许可有限责任公司 | Virtual Machine Guarantee |
CN105912953A (en) * | 2016-05-11 | 2016-08-31 | 北京北信源软件股份有限公司 | Trusted booting based data protecting method of virtual machine |
CN106354550A (en) * | 2016-11-01 | 2017-01-25 | 广东浪潮大数据研究有限公司 | Method, device and system for protecting security of virtual machine |
-
2017
- 2017-07-28 CN CN201710632814.0A patent/CN107392030A/en active Pending
Patent Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH11212807A (en) * | 1998-01-30 | 1999-08-06 | Hitachi Ltd | Program execution method |
CN1997955A (en) * | 2004-06-24 | 2007-07-11 | 英特尔公司 | Method and apparatus for providing secure virtualization of a trusted platform module |
CN101405694A (en) * | 2006-03-21 | 2009-04-08 | 国际商业机器公司 | Method and apparatus for migrating a virtual TPM instance and preserving uniqueness and completeness of the instance |
CN101488173A (en) * | 2009-01-15 | 2009-07-22 | 北京交通大学 | Method for measuring completeness of credible virtual field start-up files supporting non-delaying machine |
CN101599025A (en) * | 2009-07-07 | 2009-12-09 | 武汉大学 | Safety virtualization method of trusted crypto module |
CN103501303A (en) * | 2013-10-12 | 2014-01-08 | 武汉大学 | Active remote attestation method for measurement of cloud platform virtual machine |
CN105830082A (en) * | 2013-12-24 | 2016-08-03 | 微软技术许可有限责任公司 | Virtual Machine Guarantee |
CN103888251A (en) * | 2014-04-11 | 2014-06-25 | 北京工业大学 | Virtual machine credibility guaranteeing method in cloud environment |
CN105912953A (en) * | 2016-05-11 | 2016-08-31 | 北京北信源软件股份有限公司 | Trusted booting based data protecting method of virtual machine |
CN106354550A (en) * | 2016-11-01 | 2017-01-25 | 广东浪潮大数据研究有限公司 | Method, device and system for protecting security of virtual machine |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108132828A (en) * | 2017-12-25 | 2018-06-08 | 浪潮(北京)电子信息产业有限公司 | Imaginary Mechanism construction method, device and the equipment realized based on libvirt |
CN108255579A (en) * | 2018-01-11 | 2018-07-06 | 浪潮(北京)电子信息产业有限公司 | A kind of virtual machine management method and device based on KVM platforms |
CN109101319A (en) * | 2018-08-09 | 2018-12-28 | 郑州云海信息技术有限公司 | It is a kind of to realize TPCM fully virtualized platform and its working method on QEMU |
CN109101319B (en) * | 2018-08-09 | 2021-07-27 | 郑州云海信息技术有限公司 | Working method of platform for realizing TPCM full virtualization on QEMU |
CN111831609A (en) * | 2020-06-18 | 2020-10-27 | 中国科学院数据与通信保护研究教育中心 | Method and system for unified management and distribution of binary file metric values in virtualization environment |
CN111831609B (en) * | 2020-06-18 | 2024-01-02 | 中国科学院数据与通信保护研究教育中心 | Method and system for unified management and distribution of binary metric values in virtualized environments |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107392030A (en) | A kind of method and device for detecting virtual machine and starting safety | |
US11777705B2 (en) | Techniques for preventing memory timing attacks | |
CN109117250B (en) | Simulator identification method, simulator identification equipment and computer readable medium | |
US10972475B1 (en) | Account access security using a distributed ledger and/or a distributed file system | |
CN103368987B (en) | Cloud server, application program verification, certification and management system and application program verification, certification and management method | |
CN104751048B (en) | A kind of dynamic link library integrity measurement method under pre-linking mechanism | |
CN102473223B (en) | Information processing device and information processing method | |
WO2011146305A2 (en) | Extending an integrity measurement | |
CN108399329A (en) | A method of improving trusted application safety | |
KR20150105390A (en) | Roots-of-trust for measurement of virtual machines | |
CN111737081B (en) | Cloud server monitoring method, device, equipment and storage medium | |
CN104850792A (en) | Establishment method and apparatus of trust chain of server | |
US11836244B2 (en) | Clone application detection mechanism for securing trusted execution environments against a malicious operating system | |
CN107808096A (en) | Method, terminal device and the storage medium of malicious code are injected into during detection APK operations | |
JP2015524128A (en) | Network-based management of protected data sets | |
CN103793651A (en) | Kernel integrity detection method based on Xen virtualization | |
Tillmanns et al. | Firmware insider: Bluetooth randomness is mostly random | |
CN107341389B (en) | The method and device for preventing equipment to be multiplexed | |
CN116414722B (en) | Fuzzy test processing method and device, fuzzy test system and storage medium | |
CN108073411A (en) | A kind of kernel loads method and device of patch | |
CN109951527B (en) | Virtualization system-oriented hypervisor integrity detection method | |
CN109922056B (en) | Data security processing method, terminal and server thereof | |
CN110071844A (en) | A kind of detection script creation system, method and relevant apparatus | |
CN109740351A (en) | A kind of leak detection method, device and the equipment of embedded firmware | |
CN115130114A (en) | Gateway safety starting method and device, electronic equipment and storage medium |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20171124 |
|
RJ01 | Rejection of invention patent application after publication |